Описание
Free Hosting Manager 1.2 and 2.0 allows remote attackers to bypass authentication and gain administrative access by setting both the adminuser and loggedin cookies.
Ссылки
- Vendor Advisory
- Exploit
- Vendor Advisory
- Exploit
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:a:fhm-script:free_hosting_manager:1.2:*:*:*:*:*:*:*
cpe:2.3:a:fhm-script:free_hosting_manager:2.0:*:*:*:*:*:*:*
EPSS
Процентиль: 85%
0.02485
Низкий
7.5 High
CVSS2
Дефекты
CWE-264
Связанные уязвимости
github
почти 4 года назад
Free Hosting Manager 1.2 and 2.0 allows remote attackers to bypass authentication and gain administrative access by setting both the adminuser and loggedin cookies.
EPSS
Процентиль: 85%
0.02485
Низкий
7.5 High
CVSS2
Дефекты
CWE-264